<!DOCTYPE html>
<html lang="zh-cn">
	<head>
		<meta charset="utf-8">
		<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
		<meta name="viewport" content="width=device-width, initial-scale=1">
		 
			
  
    <meta name="twitter:card" content="summary"/>
    
      <meta name="twitter:image" content="https://www.samrainhan.com/images/avatar.png" />
    
  
  
  <meta name="twitter:title" content="Nmap初体验"/>
  <meta name="twitter:description" content="思维导图文件下载 What 网络扫描工具，通过隐秘手法推断获得运行的服务器、端口及服务信息 where 攻:黑客常用扫描工具，用来找到攻击范围，而后精确爆破 防:管"/>
  
  
  
  
    <meta name="twitter:creator" content="@韩雨"/>
  



		
		<meta name="author" content="韩雨">
		<meta name="description" content="学习 &amp;nbsp;&amp;bull;&amp;nbsp; 生活">
		<meta name="generator" content="Hugo 0.52" />
		<title>Nmap初体验 &middot; sam的小窝</title>
		<link rel="shortcut icon" href="https://www.samrainhan.com/images/favicon.ico">
		<link rel="stylesheet" href="https://www.samrainhan.com/css/style.css">
		<link rel="stylesheet" href="https://www.samrainhan.com/css/highlight.css">

		
		<link rel="stylesheet" href="https://www.samrainhan.com/css/font-awesome.min.css">
		

		
		<link href="https://www.samrainhan.com/index.xml" rel="alternate" type="application/rss+xml" title="sam的小窝" />
		

		
	</head>

    <body>
       <nav class="main-nav">
	
	
		<a href='https://www.samrainhan.com/'> <span class="arrow">←</span>Home</a>
	
	<a href='https://www.samrainhan.com/posts'>Archive</a>
	<a href='https://www.samrainhan.com/tags'>Tags</a>
	<a href='https://www.samrainhan.com/about'>About</a>

	

	
	<a class="cta" href="https://www.samrainhan.com/index.xml">Subscribe</a>
	
</nav>


        <section id="wrapper" class="post">
            <article>
                <header>
                    <h1>
                        Nmap初体验
                    </h1>
                    <h2 class="headline">
                    Sep 3, 2013 00:00
                    · 526 words
                    · 2 minute read
                      <span class="tags">
                      
                      
                          
                              <a href="https://www.samrainhan.com/tags/nmap">Nmap</a>
                          
                              <a href="https://www.samrainhan.com/tags/%E9%BB%91%E5%AE%A2">黑客</a>
                          
                              <a href="https://www.samrainhan.com/tags/%E5%B7%A5%E5%85%B7">工具</a>
                          
                              <a href="https://www.samrainhan.com/tags/%E7%AB%AF%E5%8F%A3%E6%89%AB%E6%8F%8F">端口扫描</a>
                          
                              <a href="https://www.samrainhan.com/tags/%E7%BD%91%E7%BB%9C">网络</a>
                          
                      
                      
                      </span>
                    </h2>
                </header>
                
                  
                    <div id="toc">
                      <nav id="TableOfContents">
<ul>
<li>
<ul>
<li><a href="#what">What</a>
<ul>
<li><a href="#网络扫描工具-通过隐秘手法推断获得运行的服务器-端口及服务信息">网络扫描工具，通过隐秘手法推断获得运行的服务器、端口及服务信息</a></li>
</ul></li>
<li><a href="#where">where</a>
<ul>
<li><a href="#攻-黑客常用扫描工具-用来找到攻击范围-而后精确爆破">攻:黑客常用扫描工具，用来找到攻击范围，而后精确爆破</a></li>
<li><a href="#防-管理员日常维护工具-找到目前的漏洞-第一时间修复它">防:管理员日常维护工具，找到目前的漏洞，第一时间修复它</a></li>
</ul></li>
<li><a href="#how">how</a>
<ul>
<li><a href="#install">install</a></li>
<li><a href="#启动方式">启动方式</a></li>
<li><a href="#自带10种扫描方式">自带10种扫描方式</a></li>
</ul></li>
</ul></li>
</ul>
</nav>
                    </div>
                  
                
                <section id="post-body">
                    

<p><a href="https://docs.google.com/file/d/0B1DrsqrLRzeIQ1g2bmk0aGh2S0U/edit?usp=sharing">思维导图文件下载</a></p>

<h2 id="what">What</h2>

<h3 id="网络扫描工具-通过隐秘手法推断获得运行的服务器-端口及服务信息">网络扫描工具，通过隐秘手法推断获得运行的服务器、端口及服务信息</h3>

<h2 id="where">where</h2>

<h3 id="攻-黑客常用扫描工具-用来找到攻击范围-而后精确爆破">攻:黑客常用扫描工具，用来找到攻击范围，而后精确爆破</h3>

<h3 id="防-管理员日常维护工具-找到目前的漏洞-第一时间修复它">防:管理员日常维护工具，找到目前的漏洞，第一时间修复它</h3>

<h2 id="how">how</h2>

<h3 id="install">install</h3>

<ul>
<li>具体参见<a href="http://nmap.org/download.html">官网</a></li>
<li>Ubuntu安装办法

<ul>
<li>sudo apt-get install alien</li>
<li>下载最新的Nmap、Ncat、Nping、Zenmap的RPM包</li>
<li>sudo alien nmap<em>.rpm ncat</em>.rpm nping<em>.rpm zenmap</em>.rpm</li>
<li>sudo dpkg -install nmap<em>.deb ncat</em>.deb nping<em>.deb zenmap</em>.deb</li>
</ul></li>
</ul>

<h3 id="启动方式">启动方式</h3>

<ul>
<li>命令行:nmap</li>
<li>图形界面:Zenmap</li>
</ul>

<h3 id="自带10种扫描方式">自带10种扫描方式</h3>

<ul>
<li>Intense scan
(nmap -T4 -A -v) 一般来说，Intense scan可以满足一般扫描 -T4 加快执行速度 -A 操作系统及版本探测 -v 显示详细的输出</li>
<li>Intense scan plus UDP
(nmap -sS -sU -T4 -A -v) 即UDP扫描 -sS TCP SYN 扫描 -sU UDP 扫描</li>
<li>Intense scan,all TCP ports
(nmap -p 1-65536 -T4 -A -v) 扫描所有TCP端口，范围在1-65535，试图扫描所有端口的开放情况，速度比较慢。 -p 指定端口扫描范围</li>
<li>Intense scan,no ping
(nmap -T4 -A -v -Pn) 非ping扫描 -Pn 非ping扫描</li>
<li>Ping scan
(nmap -sn) Ping 扫描 优点：速度快。 缺点：容易被防火墙屏蔽，导致无扫描结果 -sn ping扫描</li>
<li>Quick scan
(nmap -T4 -F) 快速的扫描 -F 快速模式。</li>
<li>Quick scan plus
(nmap -sV -T4 -O -F &ndash;version-light) 快速扫描加强模式 -sV 探测端口及版本服务信息。 -O 开启OS检测 &ndash;version-light 设定侦测等级为2。</li>
<li>Quick traceroute
(nmap -sn &ndash;traceroute) 路由跟踪 -sn Ping扫描，关闭端口扫描 -traceroute 显示本机到目标的路由跃点。</li>
<li>Regular scan
规则扫描</li>
<li>Slow comprehensive scan
(nmap -sS -sU -T4 -A -v -PE -PP -PS80,443,-PA3389,PU40125 -PY -g 53 &ndash;script all) 慢速全面扫描。</li>
</ul>

                </section>
            </article>

            
                <a class="twitter" href="https://twitter.com/intent/tweet?text=https%3a%2f%2fwww.samrainhan.com%2fposts%2f2013-09-03-first-experience-of-nmap%2f - Nmap%e5%88%9d%e4%bd%93%e9%aa%8c "><span class="icon-twitter"> tweet</span></a>

<a class="facebook" href="#" onclick="
    window.open(
      'https://www.facebook.com/sharer/sharer.php?u='+encodeURIComponent(location.href),
      'facebook-share-dialog',
      'width=626,height=436');
    return false;"><span class="icon-facebook-rect"> Share</span>
</a>

            

            
                <div id="disqus_thread"></div>
<script type="text/javascript">
    var disqus_shortname = 'samrainblogbygithub'; 

     
    (function() {
        var dsq = document.createElement('script'); dsq.type = 'text/javascript'; dsq.async = true;
        dsq.src = '//' + disqus_shortname + '.disqus.com/embed.js';
        (document.getElementsByTagName('head')[0] || document.getElementsByTagName('body')[0]).appendChild(dsq);
    })();
</script>
<noscript>Please enable JavaScript to view the <a href="https://disqus.com/?ref_noscript">comments powered by Disqus.</a></noscript>
</div>

            

            
                <ul id="post-list" class="archive readmore">
    <h3>Read more</h3>

    
    
    
        <li>
            <a href="/posts/2019-04-26-c9-move-to-aws-c9/">Cloud9 Move to Aws C9<aside class="dates">Apr 26 2019</aside></a>
        </li>
    
        <li>
            <a href="/posts/2019-02-16-why-build-blog-with-cloud9/">2019 02 16 Why Build Blog With Cloud9<aside class="dates">Feb 16 2019</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-sports-stretching-best-practices/">运动拉伸最佳实践<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-add-2-files-to-tempdb-for-caching/">给tempdb加2个文件做缓存<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-look-for-sql-server-tables-without-a-clustered-index/">如何找到没有聚集索引的表<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-the-continuous-delivery-maturity-model/">持续实施成熟度模型<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-map-of-continuous-delivery/">持续发布的各个阶段<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-how-dropbox-securely-stores-your-passwords/">Dropbox的用户密码加密机制<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-code-inspection-tool-for-net/">NET代码检查工具<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
        <li>
            <a href="/posts/2018-09-12-how-to-make-unique-id/">怎样生成唯一ID<aside class="dates">Sep 12 2018</aside></a>
        </li>
    
</ul>

            

            <footer id="footer">
    
        <div id="social">

	
	
    <a class="symbol" href="">
        <i class="fa fa-facebook-square"></i>
    </a>
    
    <a class="symbol" href="https://github.com/samrain">
        <i class="fa fa-github-square"></i>
    </a>
    
    <a class="symbol" href="">
        <i class="fa fa-twitter-square"></i>
    </a>
    


</div>

    
    <p class="small">
    
       © Copyright 2019 <i class="fa fa-heart" aria-hidden="true"></i> 韩雨
    
    </p>
    <p class="small">
        Powered by <a href="http://www.gohugo.io/">Hugo</a> Theme By <a href="https://github.com/nodejh/hugo-theme-cactus-plus">nodejh</a>
    </p>
</footer>

        </section>

        <script src="https://www.samrainhan.com/js/jquery-3.3.1.min.js"></script>
<script src="https://www.samrainhan.com/js/main.js"></script>
<script src="https://www.samrainhan.com/js/highlight.min.js"></script>
<script>hljs.initHighlightingOnLoad();</script>




  
<script type="application/javascript">
var doNotTrack = false;
if (!doNotTrack) {
	(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
	(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
	m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
	})(window,document,'script','https://www.google-analytics.com/analytics.js','ga');
	ga('create', 'UA-37708730-1', 'auto');
	
	ga('send', 'pageview');
}
</script>





    </body>
</html>
